CVE-2023-0264

by Fred · 04/08/2023

A flaw was found in Keycloaks OpenID Connect user authentication, which may incorrectly authenticate requests. An authenticated attacker who could obtain information from a user request within the same realm could use that data to impersonate the victim and generate new session tokens. This issue could impact confidentiality, integrity, and availability.

Date published : 2023-08-04

https://access.redhat.com/security/cve/CVE-2023-0264

CVE-2023-0264

Similar

Recent Posts

Categories

CVE-2023-0264

Share this:

Similar

Recent Posts

Categories

Tags